rod-trent/KQLMysteries external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

rod-trent/KQLMysteries

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/rod-trent/KQLMysteries)

Close

rod-trent / KQLMysteriesView on GitHubMore

• External links
• Readme badge

The collateral repository for The KQL Mysteries series

☆27Mar 8, 2024Updated 2 years ago

Alternatives and similar repositories for KQLMysteries

Users that are interested in KQLMysteries are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• garybushey / ProgrammingMicrosoftSentinel

  View on GitHub
  Programming Microsoft Sentinel book
  ☆24Dec 13, 2023Updated 2 years ago
• rod-trent / KQL-for-Everything

  View on GitHub
  KQL example queries for working in Azure
  ☆38Dec 1, 2025Updated 5 months ago
• KernelCaleb / Kustonomicon

  View on GitHub
  A series of cloud focused KQL queries for threat hunting and DFIR
  ☆12Oct 21, 2025Updated 7 months ago
• hackcyom / AzureKitty

  View on GitHub
  AzureKitty is an Office 365 and Azure configuration audit tool
  ☆15Jan 28, 2024Updated 2 years ago
• Bert-JanP / Sentinel-Automation

  View on GitHub
  Sentinel Logic Apps, Playbooks and Workbooks to automate enrichment, incident analysis and more.
  ☆120Jan 18, 2026Updated 4 months ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• SCStelz / security-investigator

  View on GitHub
  Automated security investigation tool using Microsoft MCP Servers, GitHub Copilot, Python Modules and custom copilot-instructions.
  ☆203May 22, 2026Updated last week
• rod-trent / SentinelKQL

  View on GitHub
  Azure Sentinel KQL
  ☆478Jul 28, 2025Updated 10 months ago
• rod-trent / MustLearnKQL

  View on GitHub
  Code included as part of the MustLearnKQL blog series
  ☆1,168Jan 30, 2026Updated 4 months ago
• le0li9ht / Microsoft-Sentinel-Queries

  View on GitHub
  KQL queries for cyber defense and for solving daily issues
  ☆55Jul 28, 2025Updated 10 months ago
• KnudsenMorten / Copilot4SecurityTools

  View on GitHub
  Copilot for Security Tools
  ☆19Apr 19, 2024Updated 2 years ago
• LearningKijo / KQL

  View on GitHub
  Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.
  ☆491Nov 22, 2024Updated last year
• CyberAutomationX / SecureAzCloud-Scripts

  View on GitHub
  ☆99Apr 3, 2026Updated last month
• JFolberth / Azure_IaC_Flavors

  View on GitHub
  Open source repository to help others learn about IaC and the various flavors
  ☆18Apr 16, 2024Updated 2 years ago
• EEN421 / KQL-Queries

  View on GitHub
  Ian Hanley's deceptively simple KQL queries.
  ☆68Apr 10, 2026Updated last month
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• securitytoolkit / securitytoolkit.github.io

  View on GitHub
  ☆68Dec 22, 2025Updated 5 months ago
• alexverboon / Hunting-Queries-Detection-Rules

  View on GitHub
  KQL Queries. Microsoft Defender, Microsoft Sentinel
  ☆200May 15, 2026Updated 2 weeks ago
• Kaidja / Microsoft-Sentinel

  View on GitHub
  Microsoft Sentinel related content
  ☆38Jan 22, 2025Updated last year
• 16667 / Metasploitable-3-CTF

  View on GitHub
  Metasploitable3 CTF Write-up
  ☆40Dec 12, 2017Updated 8 years ago
• Azure / terraform-azurerm-avm-res-devopsinfrastructure-pool

  View on GitHub
  Terraform Azure Verified Resource Module for DevOps Pools
  ☆21Mar 18, 2026Updated 2 months ago
• ashwin-patil / blue-teaming-with-kql

  View on GitHub
  Repository with Sample KQL Query examples for Threat Hunting
  ☆218Sep 1, 2022Updated 3 years ago
• KostasKoutrou / KQL

  View on GitHub
  KQL Queries for Advanced Hunting / Log Analytics
  ☆13Jan 29, 2026Updated 4 months ago
• rod-trent / OpenAISecurity

  View on GitHub
  Scripts and Content for working with Open AI
  ☆172Apr 18, 2025Updated last year
• lucdekens / Scripts

  View on GitHub
  Collection of my scripts
  ☆12Jun 3, 2016Updated 9 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• whobin / Dexter-POSGrabber

  View on GitHub
  Sourcecode of Infostealer.Dexter POS Malware and C&C
  ☆52Mar 1, 2016Updated 10 years ago
• Whitecat18 / Mavoc

  View on GitHub
  Mavoc is an Automated c2 Windows and Linux Pentesting Tool used to generate reverse shell and deploy attacking scripts to host machines…
  ☆44Feb 4, 2024Updated 2 years ago
• dayofexploits / Nettacker

  View on GitHub
  Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
  ☆18Jan 24, 2024Updated 2 years ago
• Cloud-Architekt / EntraOps

  View on GitHub
  Community project to classify, identify and protect your privileges based on Enterprise Access Model (EAM)
  ☆273May 7, 2026Updated 3 weeks ago
• ml58158 / Demystifying-KQL

  View on GitHub
  Content Repo for Demystifying KQL Tutorial Series
  ☆74Sep 1, 2024Updated last year
• MxIris-Reverse-Engineering / HopperMCP

  View on GitHub
  A Model Context Protocol server for Hopper Disassembler
  ☆160Apr 13, 2025Updated last year
• msdirtbag / MDE-Quickstart

  View on GitHub
  MDE Quickstart is a battle-tested MDE policy set designed to be restored with Intune Backup & Restore
  ☆65Dec 26, 2022Updated 3 years ago
• jkerai1 / KQL-Queries

  View on GitHub
  KQL Queries
  ☆41May 13, 2026Updated 2 weeks ago
• Whitecat18 / Javahexor

  View on GitHub
  An automated tool kit that clones sites and builds malicious javascript , deploys public Tunneling and send info through telegram Bot
  ☆62Mar 2, 2025Updated last year
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• oliveirt / cActiveDirectorySecurity

  View on GitHub
  The cActiveDirectorySecurity module contains PowerShell Functions which are designed to report on and manipulate Access Control Lists on …
  ☆11Aug 31, 2018Updated 7 years ago
• Versionx10 / X-10-WIFI-V2

  View on GitHub
  ☆14Jun 12, 2025Updated 11 months ago
• MWR-CyberSec / AD-CS-Forest-Exploiter

  View on GitHub
  Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise
  ☆132Dec 2, 2023Updated 2 years ago
• urpatton / OSD-Wizard-UDI-Replacement

  View on GitHub
  A PowerShell OSD wizard created based on the MDT UDI Wizard functionality
  ☆20May 15, 2025Updated last year
• arthur404dev / learn-go

  View on GitHub
  ☆10Jan 8, 2024Updated 2 years ago
• mattias-fjellstrom / terraform-professional-book-sample-code

  View on GitHub
  Terraform Professional Book Sample Code
  ☆13Jan 9, 2025Updated last year
• freelancermijan / reconengine

  View on GitHub
  A Powerful Recon Engine
  ☆69Nov 20, 2024Updated last year